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(57) ABSTRACT 

Methods, systems and computer prograha products are pro- 
vided which update firmware in a network computer by 
replacing the standard operating system to be loaded at"the 
initialization of the network computer with a firmware 
update, .ope rating system. The firmware update operating 
system is then downloaded to the network computer and 
initiated to update the firmware of the network computer. 
The firmware update operating system may then be replaced 
with the standard operating system to be loaded at the 
initialization of the network computer. The network com- 
puter may then be reinitialized by, for example, a cold boot, 
so as to load the standard operating system. The cold boot 
may be server initiated so as to allow for firmware updates 
with intervention by an operator at the network computer. 
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METHODS, SYSTEMS AND COMPUTER 
PROGRAM PRODUCTS FOR SECURE 
FIRMWARE UPDATES 

FIELD OF THE INVENTION 

This invention relates to computer systems, methods and 
program products, and more particularly to personal com- 
puter and network computer systems, methods and program 
products. 

BACKGROUND OF THE INVENTION 

Personal computers are widely used in consumer and 
commercial environments. Personal computers include, but 
are not limited to, IBM® and IBM-compatible computers 
which operate in a Windows® or OS/2® environment. 
Personal computers can also include workstations operating 
in a Unix® or other environment. As is well known to those 
having skill in the art, a personal computer includes a central 
processing unit (also referred to as a "system unit") and a 
user interface that is responsive to user input and to the 
central processing unit. The user interface generally includes 
a display, a keyboard, and a pointing device such as a mouse. 
The personal computer also includes persistent storage such 
as a hard disk drive that stores programs and data. An 
operating system such as Windows 95®, OS/2® or Unix® 
is also stored in the persistent storage. A plurality of appli- 
cations programs such as computer games or an ofiBce suite 
are also generally stored in the persistent storage. 

Personal computers also may include a network interface 
application that communicates wiih a server over a network. 
The network interface application may be an Internet inter- 
face that communicates with the Internet using HTTP or 
other protocols. Examples of network interface applications 
include Netscape® Navigator® and Microsoft® Internet 
Explorer®. 

As personal computers and their application programs 
become more sophisticated, it is becoming increasingly 
clear that their total cost of ownership, including hardware 
and software maintenance and upgrades, may be much 
larger than the initial cost of the hardware and software 
itself. Id fact, up to $35,000 or more may be spent annually 
to maintain each personal computer in a corporate environ- 
ment. 

Network computers have been proposed in order to 
reduce this overall cost of ownership. Network computers 
generally do not require a user or administrator to install 
software on the computer. Rather, all software is loaded 
from a network server when the network computer is started 
or when needed during a session. The overall specifications 
for network computers are described in a document entitled 
Profile Definition: Network Computer, X/Open, Document 
Number: X975, published by The Open Group, Berkshire, 
UK (1997), the disclosure of which is hereby incorporated 
herein by reference. Network computers have presently been 
announced and/or shipped by IBM Corp. (Network Station, 
Series 100, 300 and 1000), Sun Microsystems (Java 
Station), Oracle (N.C.), Neoware (Neostation), Wyse 
(Winterm), Acorn (Netslation) and Corel Computer Corp. 
(Corel Video Network Computer). 

Programs for network computers are typically written in 
Java. As is well known to those having skill in the art, Java 
programs, in compiled form, are generally portable and will 
generally run on a wide range of computers and operating 
systems. Java programs support referencing Universal 
Resource Locator (URL) identifiers with content types of 
audio/basic, audio/x-wav, image/gif and image/jpeg. Java 
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provides a machine dependent desktop for executing 
machine independent applets. 

Network computers are also known as "diskless comput- 
ers" because they generally do not include persistent storage 

5 such as a floppy disk, hard disk or CD-ROM. Due to the lack 
of a disk, all programs and data, except for a small loading 
program, are obtained from the server. 

FIG. 1 is a simplified block diagram of a network com- 
puter that is connected to a server using an Internet connec- 
tion. As shown in RG. 1, network computer 100 includes a 
central processing unit 102 (also referred to as a "system 
unif*) and a user interface including a display 104, a 
keyboard 106, and a pointing device (mouse) 108. As also 
shown in FIG, 1, the network computer does not generally 
include persistent storage for storing programs and data. A 
limited amount of volatile storage such as Random Access 
Memory (RAM) may be used to temporarily store applica- 
tions and data while the network computer is running, but 
this volatile storage loses its information when the network 
computer is turned off. The network computer may also 
include permanent storage such as Read Only Memory, 
which may store a URL identifier to identify the server with 
which the computer works. The permanent storage may also 
include a base key which is used for security purposes. 

Network computer 100 also includes a network interface 
110 that allows the computer to communicate with a server 
120 using a network such as the Internet 130. As shown in 
FtG. 1, server 120 generally includes Hypertext Transfer 
Protocol (HTTP), Bootstrap Protocol (BOOTP), Dynamic 
Host Configuration Protocol (DHCP), Network File System 
(NFS) and Trivial File Transfer Protocol (1 KI P) servers. 
The server 120 also stores operating system images and a 
Java Runtime Environment (JRE). A Java desktop and other 
applications may also be included. Other non-Java related 
applications may also be included. 

During initialization, the network computer typically car- 
ries out a process similar to that of a personal computer. The 
network computer begins by performing a power on self test 

^ (POST) followed by execution of program code which loads 
the operating system from the network server. The operating 
system is then initialized and any further processing is 
performed utilizing the operating system (e.g. loading of the 
JRE). The program code which resides on the network 

^5 computer is often referred lo as firmware" because it is 
persistently stored in the computer hardware. 

In order to load the operating system, the program code 
which resides on the network computer should be able to 
initialize the network interface and other peripherals asso- 

50 ciated with the network computer. Thus, the firmware may 
have device dependent program code and may be required to 
change over time. Furthermore, as peripherals are added to 
the network computer there may be a need to revise the 
firmware to account for these peripherals. Additionally, the 

55 initialization code or the POST procedure may also need to 
change from that originally provided with the network 
computer. 

Traditionally, firmware and device drivers which reside 
on a personal computer are updated by installing new 

60 firmware or device drivers from a portable storage media 
such as a floppy disk drive, CDROM, or hard disk. 
AltematiMelyr-U^_ jjpdate would be downloaded from a 
c ommonly accessible storage location such as a bulletin 
boajd-Qr Jntemet web site to a persLStent local stor age 

65 device-This pr ocess, essentially re plicates the typical pro- 
cess oX ^'pft^^^C firr n^^arc Iro qi portaT^c MuiageTUed ia 
by providing the firmware update on persistent storage. In 
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either case, the firmware installation requires a persistent Similarly, the standard operating system may be validated 

local storage media because the update would be _accom- before being utilized to initialize the operating system, 

plished by initializing the personal computer (i.e. "booting") By providing for validation of the operating systems at the 

from the persistent local storage media. This operation is network computer, the security of the firmware update may 

typically a manual operation which may require user inter- 5 be further increased. The boot image of the firmware update 

veption at each personal computer to be updated. may be confirmed by the network computer so that viruses 

By providing for centralized application management at- or other data corruption may be avoided at the network 

the server, network computers may reduce the management computer. 

requirements for a computer network. Furthermore, because another embodiment of the present invention, whether 

the applications of a network computer are centrally lO the network computer firmware is to be updated is deter- 

managed, a user may move from location to location within mined and the update of the firmware conditioned upon this 

the network and still have available the same applications. determination. The determination of the need to update the 

However, because a network computer has no removable or firmware of a network computer may be carried out by a 

local mass storage such as hard disk, CDROM or floppy disk Simple Network Management Protocol (SNMP) query to an 

drives, updaUng firmware or device drivers which reside on 15 sNMP agent resident on the network computer. The ability 

the network computer may be difficult, labor intensive and ^ detect the need for an update by a server allows for the 

in some situations impossible. Furthermore, there is no local automation of the firmware update process and furthers the 

storage device to download The update to or to boot from to centralization of the update process. 

install the new firmware. Additionaliy, the download opera- ^^^^^^ ^^^^^ operating system could also 

tion may be non-secure and may introduce the possibUity 20 ^ ^rm^^rc of a device attached to the network 

that a virus or other corrupted data may be mtroduced to the computer. By performing a cold reboot of the network 

computer. Accordmgly, a need exists for miprovements m ^^mputer, which may be server initiated, an initiahzation of 

updatmg firmware for network computers. ^^^-^^ ^^^^^^^^ ^^t^^^j, computer, such as peripheral 

SUMMARY OF THE INVENTION 25 ^^^P^^^ cards, are also reinitialized. Thus, the present inven- 
tion provides for, not only the update of firmware of a 

It is one object of the present mvention to provide for network computer, but for the update of firmware of devices 

updating the firmware of a network computer without the accessible to the network computer, 

need for a floppy drive or other portable storage media. ^ .„ , • i . t r i n • »_ . . 

. . ^ ^ , ^ . . ^ .J - As will be appreciated by those of skill in the art, the 

Another object of the present invention ,s to provide for resent invention may be embodied as systems, methods 

more secure updates of a network computer s firmware. ^^^^^^ computer program products. 

Still another object of the present invention is to provide 

for updating a network computer's firmware without inter- BRIEF DESCRIPTION OF THE DRAWINGS 

vention by the user of the network computer. r^i^ ^ • • . c j u. , i- c *- i 

\ .. ^, . .. ., FIG. 1 IS a siraphfied block diagram of a conventional 

Yet another object of the present invention is to provide 35 ^^^^^^j^ computer that communicates with a server over a 
for centralized management of the firmware of network network- 
computers. FIG. 2 is a block diagram of a network computer accord- 

These and other objects of the present invention are . . , . 

.J . . . J . . . J ing to the present invention; 

prov ided by metho ds, systems and compu ter program prod- . . ^ . ^ 

uclLwbichli ^diirfiri^^^^F^l^^ 40 ^ ^ ^ flowchart dlustratiou of operations of a 

rc ^cin^T^nrrvcr. the standTrd operating syste^iTt^ e "^^^"^^ computer embodying the present invention; and 

lo aded atjhe initialization.of the network computer_wit h a FIGS. 4a and 4b are a flowchart illustration of operations 

fir mware update operating ^tem. The firmware up date of network computer systems, methods and computer pro- 

operating sj^temi sjhen downloaded to the network com - gram products according to the present invention. 

puter^igmto_» pdairib^^ 45 DETAILED DESCRIRION OF PREFERRED 

c omputer. The firmware up date operating system may t hen EMBODIMENTS 

b ejfcplaced at the sep,^ er wi| |i tbe.standard operating system ^ 

tQ ^be loaded at the initialization o^tbe network comp uter. The present invention now will be described more fully 

The network comp uter may then be reinitialized^ bv_ .£Qr hereinafter with reference to the accompanying drawings, in 

example, a..OTld_bpot, so as to load the standard operating 59 which preferred embodiments of the invention are shown, 

system. This invention may, however, be embodied in many different 

By downloading to the network computer an operating forms and should not be construed as limited to the embodi- 
system which updates the network computer *s firmware, the ments set forth herein; rather, these embodiments are pro- 
firmware may be updated without the need for portable vided so that this disclosure will be thorough and complete, 
storage media. Furthermore, because the update operating 55 and will fully convey the scope of the invention to those 
system may be downloaded from a common network server, skilled in the art. Like numbers refer to like elements 
the firmware of multiple network computers may be cen- throughout. As will be appreciated by one of skill in the art, 
tra fly managed. Also, because the update operating system is the present invention may be embodied as methods or 
downloaded from a single source the security which may be devices. Accordingly, the present invention may take the 
utilized with the update operating system may be enhanced. 60 form of an entirely hardware embodiment, an entirely soft- 

In further embodiment of the present invention, the ware embodiment or an embodiment corabining_software 

update operating system i s a b oot ima ge of the firm ware andjhaidware_aspects. 

updalewhich is downloaded^lo^ne network comp uter. The present invention is described herein with respect to 

Furthermore.J he standard operating system may also be a flowchart illustrations of embodiments or aspects of the 

boQtJ mage of the standard operating system. Also, after 65 present invention. It wfll be understood that each block of 

downloading, the firmware update operating system may be the flowchart iUustrations, and combinations of blocks in the 

validated prior to the initiating the firmware update. flowchart iUustrations, can be implemented by computer 
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program instructions. Tliese program instructions may be 
provided to a processor to prcwiuce a machine, such that the 
instructions which execute on the processor create means for 
implementing the functions specified in the flowchart block 
or blocks. The computer program instructions may be 5 
executed by a processor to cause a series of operational steps 
to be performed by the processor to produce a computer 
implemented process such that the instructions which 
execute on the processor provide steps for implementing the 
functions specified in the flowchart block or blocks. 

Accordingly, blocks of the flowchart illustrations support 
combinations of means for performing the specified 
functions, combinations of steps for performing the speci- 
fied functions and program instruction means for performing 
the specified functions. It will also be understood that each 
block of the flowchart illustrations, and combinations of 
blocks in the flowchart illustrations, can be implemented by 
special purpose hardware-based systems which perform the 
specified functions or steps, or combinations of special 
purpose hardware and computer instructions. 

FIG. 2 illustrates one embodiment of a network computer 20 
according to the present invention. FIG. 2 illustrates the 
network computer system unit 200 and display 215 as well 
as a smart card 220. As seen in RG. 2, a network computer 
system unit 200 may include a central processing unit (CPU) 
210, memory 212 which includes flash ROM 218, a network 25 
interface 214 a smart card port 216, a video interface 213. 
The central processing unit 210 may be a microprocessor 
such as an Intel® Pentium® or other microprocessors. The 
memory may include random access memory (RAM), read 
only memory (ROM), electronically erasable programmable 
read only memory (EEPROM) or other types of memory 
known to tBbse of skill in the art. Furthermore, the memory 
212 may include cache such as an L2 cache, an instruction 
cache, a data cache or any combination thereof. However, 
according to the present invention, the memory 212 includes 35 
some form of persistent storage such as the flash ROM 218 
for storing the firmware of the network computer. 

The network computer may communicate through the 
network interface 214 with a network server 230. The 
network interface may be any number of network interfaces 40 
known to those of skill in the art, such as token ring or 
cthernet. Furthermore, the network communication protocol 
may be any communication protocol suitable for use with a 
network computer, such as, for example, TCP/IP. 

As will be appreciated by those of skill in/ the art, 45 
additional features may be incorporated into the network 
computer 200, such as serial and/or parallel communication 
interfaces, video acceleration card, sound and other multi- 
media cards as well as multiple network interfaces. 
Furthermore, a network computer according to the present 50 
invention may include a personal computer emulating a 
network computer such as is disclosed in commonly 
assigned United States Patent Application entitled Network 
Computer Emulator Systems, Methods and Computer Pro- 
gram Products for Personal Computers, the disclosure of 55 
which is incorporated by reference as if set forth fully. 

FIG. 2 also illustrates an access card 220 associated with 
the network computer of the present invention. The access 
card 220 may be a smart card in that a central processing unit 
222 and memory 224 are provided on the access card 220. 60 
When the access card 220 is placed in the smart card port of 
the network computer, the network computer may commu- 
nicate with the smart card central processing unit 222. The 
smart card may allow for secure information to be stored in 
the smart card memory 224 in an encrypted formal that can 65 
only be accessed through the smart card central processing 
unit 222. 



Briefly, in operation, the network computer can be reboo- 
ted remotely by a network management program such as the 
Simple Network Management Protocol (SNMP) manager. 
The initialization process of the network computer includes 
performing the POST operations of the network computer 
and then accessing a network server to download a boot 
image to the network computer. The boot image may be a 
firmware update boot image. The boot image is vahdated by 
the network computer, and the network computer then 
executes the program code of the boot image to update the 
firmware of the network computer. A command initiated 
cold reboot of the network computer is performed and a 
second boot image is downloaded to the network computer. 
The cold boot resets the network computer as well as 
resetting the onboard peripherals of the network computer 
such as the network interface. The second boot image 
contains the standard operating system for the network 
computer. 

The present invention will now be described with refer- 
ence to FIG. 3, FIG. 4a and FIG. 4b, which are flow chart 
illustrations of the operation of a network server and a 
network computer according to the present invention. As 
seen in FIG. 3, after the network computer has downloaded 
the update boot image, the network computer attempts to 
obtain an unprocessed update record from the update boot 
image (block 300) downloaded to the network computer. 
The update boot image may contain firmware update images 
for the network computer as well as peripherals attached to 
the network computer. The firmware of each of these devices 
may be updated in a single process by including in the boot 
image multiple update images. These update images may be 
incorporated as independent records in the boot image. A 
record may contain information on how to process the 
update image to achieve the update of the firmware as well 
as the update image itself. Through the use of the informa- 
tion and the update image of a record, the firmware for the 
network computer or a particular device connected to the 
network computer may be updated. Furthermore, a list of 
update records may also be downloaded to the network 
computer so that the network computer may keep track of 
the records processed and the remaining records to process. 

After attempting to obtain an unprocessed update record 
from the download, the network computer determines if an 
unprocessed record was obtained (block 302). If an unproc- 
essed record was obtained the information contained in the 
record and the update image are utilized to update the 
firmware of the device (block 304), The network computer 
then determines if the update was successful (block 306). If 
the update was successful, then the update record is marked 
as processed (block 308) and the network computer attempts 
to obtain another unprocessed update record (block 300). 

If the update was not successfiil, then the network com- 
puter retries the update (block 310) and again test for success 
(block 312). If the update srill fails, then the network 
computer notifies the server of the failure (block 314) and 
ends the update process. While the present invention is 
described with respect to RG. 3 as performing a single retry, 
as will be appreciated by those of skiU in the art, any number 
of retries may be attempted. 

If the network computer attempts to obtain an unproc- 
essed record (block 300) and no record is obtained (block 
302), then the update was successful as all records in the 
update download were successfully processed. The network 
computer notifies the network server of the successful 
update (block 316) and then reboots to download the stan- 
dard operating system (block 318) to complete the update 
process. 
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FIGS. 4a and 4b describe the update process including version is not correct, then the update failed for some reason 

both server and network computer operations. As seen in and the server alerts a network administrator (block 358). 

FIG. "fo, the update process begins by the server determining Returning to block 344, if the network computer deter- 

if the network computer (NQ requires a firmware update ^^^^ ^^^^^ first attempt of the update was not successful, 

(block 320). This determination may be made by obtaining 5 ^^.^^^^ computer retries the firmware update 

the finnware date or revision code for the networic computer. 3^^,^ and if that is successfiil (block 362) continues 

The nrmwarc dale or revision code may be obtained in a ..u.l j j u-iu ii /.u i 

1 .1- • L c^KTXMnu oKFK'in With ihc proccdure descfibed aoovc, However, II thc sccond 

network utihzing the SNMP by the SNMP manager query- „ r , , r i .u * i 

oxT^^r. - 1 I 1 attempt is also not successful, then the network computer 

mg the SNMP agent resident at the network computer. . « .u c .l j . r -i /ui i «7u 

. , f, , ^ notifies the server of the update failure (block 364). When 

Alternatively, if all network computers access uig a server m *u • *l r i • i r *u * i 

. , J L 1. ij 1 . 1 r the server receives the failure signal from the network 

are to be updated, then the server could keep track of the . /.i i -.y-^rx i . .i_ . i j • 

, i.-.. u ^./jj. computer (block 366), the server alerts the network admin- 

network computers which have been updated and update a . , ; f\u r i /ui i iro\ j *i. j * 

. ^ . ^ , . L . istrator ot the failure (block 368) and the update process 

networkcomputer at start up if the network computer has not ^^^^ ^ ' r r 

been updated. 

If the network computer is to have its firmware updated, 15 T^"'^"*" ^""k^^" described with respect to 
then the server determines if the network computer currenUy ^ ^^^S^^ "^'^ computer being updated by a single net- 
has a user (block 322) and if the user is not absent (block workserver however, as will be appreciated by those of skill 
324)waitsaperiodoftimefortheusertocompleteusingthe >° P^*^^^^ invention is equally applicable to 
network computer (block 326). EvenhiaUy, the user is no numerous network computers bemg remotely updated by a 
longer using the network computer and the network server 20 ^^""'J^^l^^^ administrator. Ihc use of the remote 
installs the update boot image on the boot server for access '^^"^^ P^^f ^ "^^^^^P^^ "^^^^^^ 
by the network computer (block 328). Tlie network server computers and the peripherals attached to those computers 
then issues a cold reboot command utilizing SNMP to the "P^^^^^ ^^^out intervention at each mdividual net- 
network computer (block 330). The network server then computer. 

waits until the update boot image is downloaded by the 25 ^ herein, the term network computer refers to any 

network computer (block 334). Upon receiving the reboot ^^^^ processing system which boots from a network server, 

command from the network server, the network computer In the drawings and specification, there have been dis- 

reboots which causes the network computer to download the closed typical preferred embodiments of the invention and, 

update boot image (block 334). As will be appreciated by although specific terms are employed, they are used in a 

one of skill in the are, existing program code for obtaining 30 generic and descriptive sense only and not for purposes of 

boot images as part of the initialization of a network hmilation, the scope of the invention l>eiog set forth in the 

computer may be utilized to download a boot image. After following claims, 

downloading the update boot image, the network computer That which is claimed: 

validates the boot image to assure that the boot image has 1, A method of updating finnware in a network computer, 

not been tampered with and is intended for the network 35 which initializes using a boot image comprising a standard 

computer. The validation of the update boot image may be operating system on a network server, the method compris- 

carried out in the same manner as presently utilized to ing: 

validate boot images of operating systems in network com- detecting, at the network server, whether the network 

puters. Furthermore, any number of encryption and/or com- computer firmware is to be updated; 

pression methods may be utilized so as to increase security 40 performing the following steps if the network server 

of the transferred boot image and/or reduce the amount of detects that the network computer firmware is to be 

data required to be transmitted to download the boot image. updated: 

If the boot image is valid, then the network computer replacing, at the network server, the standard operating 

notifies the network server that the download was successful system to be loaded at the initialization of the 

(block 336), When the server receives the signal from the 45 network computer with a firmware update operating 

network computer that the update boot image download was system; then 

successful, the server installs the normal boot image on the downloading the firmware update operating system to 

boot server (block 338). the network computer at initialization of the network 

Continuing on to FIG, 46 (as indicated by the connector computer; then 

"A" in FIG. 4a and the connector "A" in FIG. 4b)y the server 50 initiating the firmware update operating system to 

then waits for the firmware update to complete at the update the firmware of the network computer 

network computer. The operations of the firmware update at 2. A method according to claim 1, further comprising the 

the network computer are described in detail with respect to step of replacing, at the network server, the firmware update 

FIG. 3 but, for the sake of clarity certain portions are also operating system with the standard operating system to be 

illustrated in FIG. 4b. As seen in FIG. 4fe, the network 55 loaded at the initialization of the network computer, 

computer carries out the firmware update procedure (block 3. A method according to claim 2, wherein said step of 

342) and determines if the procedure was successful (block replacing the firmware update operating system comprises 

344). If the procedure was successful, then the network the step of reinitializing the network computer so as to load 

computer notifies the server of the success of the update the standard operating system. 

(block 346), reboots and securely loads the normal operating 60 4. A method according to claim 2, wherein said step of 

system bcK)t image (block 348). The server then receives the replacing, at the network server, the standard operating 

successful update signal from the network computer (block system to be loaded at the initialization of the network 

350) and waits for the network computer reboot (block 352). computer with a firmware update operating system com- 

The server then queries the network computer to determine prises the step of replacing the boot image for the standard 

the firmware version data such as with a SNMP query (block 65 operating system with a firmware update boot image, and 

354) and checks to see if Ihe version is correct (block 356). wherein said step of replacing the firmware update operating 

If the version is correct the update process is complete, if the system with the standard operating system comprises the 
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Step of replacing the firmware update boot image with the 
standard operating system boot image. 

5. A method accoiding to claim 1, further comprising the 
step of validating the firmware update operating system 
prior to the step of initiating the firmware update operating 5 
system. 

6. A method according to claim 1, wherein said step of 
replacing, at the network server, the standard operating 
system to be loaded at the initialization of the network 
computer with a firmware update operating system com- 
prises the step of replacing, at the network server, the boot 
image for the standard operating system with a firmware 
update boot image. 

7. A method according to claim 1, wherein said firmware 
update operating system updates the firmware of a device 
attached to the network computer. 

8. A method according to claim 1, wherein said detecting 
step comprises the step of sending an SNMP query to an 
SNMP agent resident on the network computer. 

9. A method according to claim 1, wherein the firmware 
update operating system causes the update of a plurality of 20 
devices. 

10. A method according to claim 1, wherein said step of 
reinitializing the network computer comprises the step of 
initiating a cold reboot of the network computer. 

11. A system for updating firmware in a network 25 
computer, which initializes using a boot image comprising a 
standard operating system on a network server, comprising: 

means for detecting, at the network server, whether the 
network computer firmware is to be updated; 

means for replacing the standard operating system to be 
loaded at the initialization of the network computer 
with a firmware update operating system; 

means for downloading the firmware update operating 
system to the network computer at initialization of the 
network compute^ and 35 

means for initiating the firmware update operating system 
to update the firmware of the network computer; 

wherein the means for replacing the standard operating 
system, the means for downloading the firmware 
update operating system, and the means for initiating 40 
the firmware update operating system are operably 
associated with the means for detecting so as to only 
update the network computer firmware if the means for 
detecting detects that the network computer firmware is 
to be updated. 45 

12. A system according to claim 11, further comprising 
means for replacing the firmware update operating system 
with the standard operating system to be loaded at the 
initialization of the network computer 

13. A system according to claim 12, wherein said means 50 
for replacing the firmware update operating system com- 
prises means for reinitializing the network computer so as to 
load the standard operating system. 

14. A system according to claim 12, wherein said means 
for replacing the standard operating system to be loaded at 55 
the initialization of the network computer with a firmware 
update operating system comprises means for replacing the 
boot image for the standard operating system with a firm- 
ware update boot image, and wherein said means for replac- 
ing the firmware update operating system with the standard 60 
operating system comprises means for replacing the firm- 
ware update boot image with the standard operating system 
boot image. 

15. A system according to claim 11, further comprising 
means for validating the firmware update operating system 65 
prior to the initiating of the firmware update operating 
system. 
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16. A system according to claim 11, wherein said means 
for replacing the standard operating system to be loaded at 
the initialization of the network computer with a firmware 
update operating system comprises means for replacing the 
boot image for the standard operating system with a firm- 
ware update boot image, 

17. A system according to claim 11, wherein said firm- 
ware update operating system updates the firmware of a 
device attached to the network computer. 

18. A system according to claim 11, wherein the firmware 
update operating system causes the update of a plurality of 
devices. 

19. A system according to claim 11, wherein said means 
for reinitializing the network computer comprises means for 
initiating a cold reboot of the network computer, 

20. A computer program product for updating firmware in 
a network computer, which initializes using a boot image 
comprising a standard operating system on a network server, 
the computer program product comprising: 

a computer-readable storage medium having computer- 
readable program code means embodied in said 
medium, said computer-readable program code means 
comprising: 

computer- readable program code means for detecting, 
at the network server, whether the network computer 
firmware is to be updated, 
computer- readable program code means for replacing 
the standard operating system to be loaded at the 
initialization of the network computer with a firm- 
ware update operating system; 
computer- readable program code means for download- 
ing the firmware update operating system to the 
network computer at initialization of the network 
computer; and 
computer- readable program code means for initiating 
the firmware update operating system to update the 
firmware of the network computer; 
wherein the computer- re ad able program code means 
for replacing the standard operating system, the 
computer-readable program code means for down- 
loading the firmware update operating system, and 
the computer-readable program code means for ini- 
tiating the firmware update operating system are 
operably associated with the computer-readable pro- 
gram code means for detecting so as to only update 
the network computer firmware if the computer- 
readable program code means for detecting detects 
that the network computer firmware is to be updated. 

21. A computer program product according to claim 20, 
further comprising computer-readable program code means 
for replacing the firmware update operating system with the 
standard operating system to be loaded at the initialization of 
the network computer, 

22. A computer program product according to claim 21, 
wherein said computer-readable program code means for 
replacing the firmware update operating system comprises 
computer-readable program code means for reinitiaUzing the 
network computer so as to load the standard operating 
system. 

23. A computer program product according to claim 21, 
wherein said computer-readable program code means for 
replacing the standard operating system to be loaded at the 
initialization of the network computer with a firmware 
update operating system comprises computer-readable pro- 
gram code means for replacing the boot image for the 
standard operating system with a firmware update boot 
image, and wherein said computer-readable program code 
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means for replacing the firmware update operating system 
with the standard operating system comprises computer- 
readable program code means for replacing the firmware 
update boot image with the standard operating system boot 
image. 

24. A computer program product according to claim 20, 
further comprising computer-readable program code means 
for validating the firmware update operating system prior to 
the initiating of the firmware update operating system. 

25. A computer program product according to claim 20, 
wherein said computer-readable program code means for 
replacing the standard operating system to be loaded at the 
initialization of the network computer with a firmware 
update operating system comprises computer-readable pro- 



gram code means for replacing the boot image for the 
standard operating system with a firmware update boot 
image. 

26. A computer program product according to claim 20, 
wherein said firmware update operating system updates the 
firmware of a device attached to the network computer 

27. A computer program product according to claim 20, 
wherein said computer-readable program code means for 
reinitializing the network computer comprises computer- 
readable program code means for initiating a cold reboot of 
the network computer. 

28. A computer program product according to claim 20, 
wherein the firmware update operating system causes the 
update of a plurality of devices. 

It * * * * 
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